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Space Shuttle Overview 
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SPACE SHUTTLE 
MAIN ENGINES 


Space Shuttle Main Engines (SSME) 


3 located on aft of Orbiter (weighs 7000 lbs each) 

Bums liquid oxygen and liquid hydrogen 

Each engine generates 400,000 lbs of thrust (all SSMEs provide 29% 
thrust at liftoff) 

Burn for 8.5 minutes after liftoff 




Solid Rocket Boosters (SRB) 


Largest solid rocket 
motors and first designed 
to be reusable 

Each weighs 1.3M lbs and 
produces 3.3M lbs of 
thrust (both produce 71% 
of thrust at liftoff) 

Burns for 2 minutes after 
liftoff 
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Other Major Systems 

Orbital Maneuvering System (OMS) 

10.5 minutes after liftoff to put Orbiter in orbit 

Used to slow Shuttle down for de-orbit 

Reaction Control System (RCS) 

Maneuvering engines to control Shuttle in Space (i.e. 
maneuvers) 

External Tank (ET) 

Flight Deck & Mid Deck 

Airlock 

Payload Bay and SSRMS 
ECLSS 

Pressure Control System 
Atmospheric Revitalization System 
Active Thermal Control System 
Supply and Wastewater System 
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Shuttle Video 


Risk Management Paradigm 
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Sources of Risk 
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Failure 
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RM Tools & Techniques 


QUANTITATIVE 

♦ Stochastic and Deterministic Modeling 

■ Probabilistic Risk Assessments (PRA) 

■ Other Statistical based Modeling and Analysis techniques 

♦ Cause & Effects Analysis 

■ Failure Modes & Effects Analysis (FMEA) & Failure Modes* Effects & Criticality Analysis 
(FMECA) 

■ Fault Tree Analysis (FTA) 

♦ Systems Engineering Analysis and Risk Assessments 

QUALITITATIVE 

♦ Root Cause Analysis 

♦ Hazard Analysis 

♦ Brainstorming 

♦ Process Mapping and Analysis (Human Factors) 

♦ Taxonomy-Based Questionnaires 

♦ Pareto Method 

♦ Affinity Grouping 


Enterprise Risk Management 


♦ Primary purpose of ERM is to improve the quality of decision-making 

throughout the organization 

■ Help prioritize strategic and operational decisions 



Ensure planned objectives & missions are fully achieved 
Synthesize projects and allocate risk and agency resources optimally 
Improve mission & project performance to meet agency goals 

- Projects delivered on time, on budget within requirements/specifications 


♦ Treating risks in a holistic manner 

■ Managing all risks and their interactions effectively (not just within silos). Done at 
the agency level not just at the traditional project or program level 

- Consistency of risk processes and the mitigation of risks 

- Even seemingly insignificant risks on their own have the potential, as they 
interact with other events and conditions to cause great damage. 

■ Risk management becomes part of overall project management with 
comprehensive, structured and integrated processes 

■ Integrated and synthesize Risks & Opportunities, Contingency Planning, Crisis 
Management, Continuity of Operations, Disaster Recovery, etc. 

■ Facilitate structured communications throughout the organization and with all 
stakeholders (internal & external) - avoid filtering of information 


Risk Management Implementation 

Strategy 

Covers all phases of the life cycle 

Provide a risk management communication infrastructure to store, analyze and 
deal with problems proactively — overlay on existing management infrastructure 

■ Deploy the risk process, tools and systems within the whole enterprise and integrate 
with other management systems (integrate risk management with other 
programmatic functions, including safety & mission assurance, system engineering, 
analysis and project control/cost & schedule) and also within 
contractors/subcontractors and supplier base. 

Require risk identification and management to occur in a tiered, integrated, 
structured manner 

■ Remove roadblocks preventing entry into risk management system (ensure risk 
management accessible to all levels of the organization) 

■ Analyze and individually quantify the risk consequence categories (e.g., Safety, 
Performance, Schedule, & Cost) for comprehensive understanding of risk impacts - to 
aid in risk prioritization 

■ Analyze how individual risks aggregate or are interrelated. Look for systemic 
problems and overall trends. 

■ Manage risks by developing appropriate risk handling/mitigation strategies (assign 
resources based on prioritization) & then monitor/control (include all necessary 
stakeholder assistance to ensure comprehensive closure) - prepare fall-back plans 

■ Accountability - assign risk ownership to the individual best suited to effectuate 
effective closure (usually the technical expert). Risk owner is responsible for 
shepherding the risk through closure and coordinating with all players. 

■ Dissenting opinions are encouraged - they are documented and evaluated within the 
standard risk processes 


Risk Management Implementation 

Strategy 

♦ Prioritize and escalate risks appropriately, only escalate issues that need 
resolution from above 

■ Prioritization includes Cost/Benefit Analysis 

■ Information is flowed up, resources and prioritizations are flowed down, while 
coordination is made with all responsible stakeholders 

■ Manage risks at the lowest level possible where the subject matter experts are and 
where it is the easiest to implement risk mitigation strategies and monitor its 
effectiveness 

■ Ensure that risks receive the appropriate level of management review and resources 
to effectively mitigate significant threats as early as possible (as cheaply as possible). 
Risks will be presented at each management level 

♦ Criteria for Risk escalation (to the next level): Risks should be elevated to the next 
level control board for discussion if: 


A decision is needed by the next level management or higher 

Additional resources are required to effectively mitigate the risk 

Coordination/Integration is needed with other organizations/stakeholders outside 
the current level 

Awareness or visibility by the next level management or higher is generally needed 



♦ 

effectiveness of controls to manage risk 
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Risk Coordination and Integration 
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ORION [CEVJ RISK SCORECARD 


LIKELIHOOD RATING 1 

5 

Qualitative: Likely to occur. 

Very High 

Quantitative: 10"! <P |for risks with primary impact an human safety) or P>50% 
[for risks with primary impact an cost, schedule, or performance! 

*4 

Qualitative: Probably will occur. 

High 

Quantitative: 1 0'^' <P£l 0'^ (for risks with primary impact on human safety! or 
33%<P;^50% (for nsks with primar r ' impact an cost, schedule, or performance; 

3 

Qua itative: May occur. 

Moderate 

Quantitative: 1 0'^ <P<10"^ .‘fcr risks wflti primary impact on human safety; or 
1 0%-cPs:33% (far risks 'with pnmary impact on cost, schedule, or performance) 

2 

Qua itative: Unlikely to occur. 

Low 

Quanlitative: 10"^ <P<10"^ (far risks -vifh pnmary impact on human safety) or 
1%<P^.10% |for risks with primary impact on cost, schedule, or performance! 

1 

Qualitative: Occurence improbable. 

1 Very Low 

Quantitative: PilO“* |for risks with primary impact on human safety] or 
P< 1% [for risks with primary impact on cost, schedule, or performance; 



RISK MATRIX 
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CONSEQUENCES 




RION 


TIM EF RAMI 


Near 

0 to 3 months 

Mid 

3 to 9 months 

Far 

> 9 months 


Time to Initiate 
Handling Strategy 


Conseqeuence 1 

, Rating Very Low 


Moderate 


Very High 
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Personnel 

A condition that could cause the 
need tor minor first aid treatment 
though would not adversely affect 
personal safety or health 
[Class IV) 

A condition that may cause 
minor inquiry or occupational 
illness. 

(Class 911) 

A condition that may cause severe 
injury or occupational illness 
(Class II) 

A condition that may cause 
permanently disabling injury 
(Class l-B) 

A condition that may cause death or 
lass of crew 
1 Class I-AI 

Facilities, 
Equipment, or 
Other Assets 

A condition that subjects 
facilities, equipment, or flight 
hardware to more than 
normal wear and fear [Class IV) 

A condition that may cause 
minor property damage to 
facilities, systems, equipment, 
or flight hardware [Class III) 

A condition that may cause major 
property damage to facilities, 
systems, equipment, or flight 
hardware (Class II) 

A condition that may cause 
destruction of non critical facilities 
or assets 
(Class l-B) 

A condition tha: may cause destruction 
of critical facilities on the ground, 
major systems, or vehicle during the 
mission (Class l-A) 

Environment 

Negligible OSH A/E PA 
vio ati or - non reportable 

Minor reportable OSHA/EPA 
violation 

Moderate OSHA/EPA violation 
■which requires immediate 
remediation 

Major QSHA/EPA violation 
causing tempo ran/ stoppage 

Serious or repeat OSHA/EPA violations 
resulting in action terminating project 

PERFORMANCE 

(Mission Success) 
Including impacts to 
operations and supportability 

Negligible impact to 
requirements, mission 
objectives or technical goals 

Minor Impact lo requirements, 
mission objectives or technical 
goals 

Moderate impact to requirements, 
mission ob[e-ctives or technical 
goa Is 

Major impact to requirements, 
mission objectives or technical 
goals 

Technical goals not achievable with 
existing engineering capabilities/ 
technologies 

COST 

■rSIOOK 

(Negligible impact to budget) 

>51 OQK but <5 1M 
(Minor impact to budget) 

>J!M but <5 1 GM 
(Moderate impact to budget) 

_ >S10M buf <$50M 
(Major impact to budget) 

> 55 OM 

[Possible project cancellation) 

SCHEDULE 

Negligible schedule impact 

Minor overall schedule impact 
(Accommodate with reserve, no 
impact to critical path! 

<1 month impact fa critical path/ 
milestones 

>1 and <5 month impact to 
critical path/milestones 

>5 month impact to critical path/ 
milestones or possible 
project cancellation 


September 2 GO 6 













Risk Management Lessons Learnt 

♦ Risk management supported by leadership, team members and stakeholders and active 
involvement by all 

■ Uses it and promotes it 

♦ A well defined, structured and understood risk management processes and tools 

■ A formally documented risk management process 

■ Comprehensive and structured risks identification processes and tools (Establish risk 
toolbox for identifying and analyzing risks) 

■ Proper incentives and disincentives to foster good practices 

■ All team-members are expected to participate in risk management 

■ Not overly complex, must be understood and used (minimize overhead & foster 
adherence) 

■ A proactive risk training program 

♦ Continuous and iterative assessment of risks 

■ Provide elements of independence of the risk analysis function from the program/project 

♦ Integrated with program/project decision-making processes (RIDM) 

■ Continuous, event-driven technical reviews (incl project milestones) to help define a 
program that satisfies the customer’s needs within acceptable risk 

■ Continuous prioritization, assessments and mitigation planning and appropriate funding 

♦ Risk management integral to the acquisition process 

♦ A continuous process improvement strategy that monitor: 
management processes and tools 

♦ 

difficult 



Summary 


♦ Phased-approach for implementation of risk management is necessary 

♦ Risk management system will be simple, accessible and promote communication 
of information to all relevant stakeholders for optimal resource allocation and risk 
mitigation 

■ Risk management should be used by all team members to manage risks - risk office 
personnel 

■ Each group is assigned Risk Integrators who are facilitators for effective risk 
management 

■ Risks will be managed at the lowest-level feasible, elevate only those risks that require 
coordination or management from above 


♦ Risk reporting and communication is an essential element of risk management and 
will combine both qualitative and quantitative elements 

♦ Risk informed decision making should be introduced to all levels of management 

♦ Provide necessary checks and balances to insure that risks are caught/iden 
and dealt with in a tin 

♦ Many supporting tools, processes & training must be 
management implementation 

♦ 
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